paysafecard

paysafecard
paysafecard protects its customers from phishing
and Trojan attacks
At-a-Glance
Key Requirements
–– Identify and take down phishing
and fraud threats promptly
–– 24 x 365 dedicated anti-fraud
cybercrime operation
–– Mitigate cybercrime incidents in
real-time across thousands of
networked organizations
Solution
–– RSA FraudAction™ Anti-Phishing
and RSA FraudAction Anti-Trojan
services provide global threat
detection and take-down from a
single location
–– Research team with deep
knowledge of fraud trends
–– Quality blocking and feeding
partners including TrendMicro,
Microsoft, and others
Results
–– Able to take down phishing and
Trojan attacks in under five hours,
which was previously impossible
“RSA consistently identifies potential threats and attacks against
our customers and takes care of them. If we weren’t using the
RSA services, we would need to invest heavily in liaising with all
the ISPs, registrars and blocking organizations. Leveraging RSA’s
long term experience significantly helped us to build up a strong
cybercrime competence within a short timeframe. We can trust
that RSA is taking care of it, and it makes our life much easier.”
Christoph Sprongl, Chief Information Security Officer, paysafecard.com Wertkarten AG
The paysafecard group, founded in 2000, already operates in 31
countries worldwide. The group has established itself as Europe’s
leading provider for prepaid payment solutions. In 2012 the group
won the Paybefore Award for being the ‘Best Digital Currency’ and the
Paybefore Award Europe for being the ‘Most Innovative Prepaid Solution’.
Key Requirements
The Internet has revolutionized the way we shop. You can think of almost any product at
any time, go online, and have it delivered to your door. Online shopping typically requires
a credit card, though, which excludes people who cannot or do not have one. paysafecard
offers a solution as it makes online payments as easy as using cash and it offers
complete security against data abuse and fraud. Anybody can use paysafecard as no
credit card or bank account is required. When making a payment, customers’ financial
privacy remains fully intact. The voucher functions like a charge card for mobile phones.
The 16-digit pin is all that is needed to make a transaction. The amount paid is then
debited from the paysafecard balance, which can be checked online at any time.
“We had 45 million transactions last year and we’re estimating we will increase on that
this year,” said Christoph Sprongl, Chief Information Security Officer, paysafecard.com
Wertkarten AG. “Whenever you do business on the Internet, fraud is a threat, so it is
essential that we take care of it in a proactive way. Maintaining our good reputation and
our security are top priorities for us. We have to make sure our customers feel
comfortable and safe with our service.”
The company undertook a comprehensive risk assessment and identified potential
threats including Trojans, phishing attacks and brand abuse.
customer
profile
paysafecard was building its own fraud prevention systems, analyzing forums and using
information from police and customers to identify threats, but this was extremely
resource-intensive. “If we found a phishing site, we would report it to the blocking
alliances, but if you don’t have a commercial contract with them, it’s hard to get in the
high-priority queue,” said Sprongl. “The process was time-consuming and had no
guarantee to reach all required parties.”
paysafecard needed a 24 x 365 dedicated anti-fraud cybercrime operation with the ability
to mitigate cybercrime incidents in real time across thousands of networked organizations.
“I’m happy to recommend
RSA’s services. We could
significantly improve our
capability to fight cybercrime
effectively. We have a
competent partner who runs a
service for us on a 24x7 basis.
We could have never built up
the service on our own with
comparable quality and
effectiveness.”
Roland Schaar, Chief Information
Officer, paysafecard
Solution
paysafecard chose the RSA FraudAction Anti-Phishing Service and RSA FraudAction AntiTrojan Service to protect its business. They provide global threat detection and take-down
services in one location, backed by a research team with a deep knowledge of fraud
trends. The services’ high-quality blocking and feeding partners include TrendMicro,
Microsoft, and others, which has access to device, IP, financial and identity feeds from
over 8,000 organizations worldwide.
RSA identifies and takes care of threats for paysafecard and provides a quick insight into
any incidents affecting it through a reporting portal. It is used primarily by the fraud and
information security departments with regular reporting to the CEO and CIO.
“We chose RSA because it has an excellent reputation and is well connected with ISPs,
registrars, and legal organizations worldwide,” said Sprongl. “The company is also
oriented to what customers like us really need. RSA gives us a complete tailored service
we can trust, not just a product we would have to take on and adapt to our needs.”
He adds: “RSA consistently identifies potential threats and attacks against our customers
and takes care of them. If we weren’t using the RSA services, we would need to invest
heavily in liaising with all the ISPs, registrars and blocking organizations. Leveraging
RSA’s long term experience significantly helped us to build up a strong cybercrime
competence within a short timeframe. We can trust that RSA is taking care of it, and it
makes our life much easier.”
Results
Contact Us
To learn more about how RSA
products, services, and solutions help
solve your business and IT challenges
contact your local representative or
authorized reseller – or visit us at
www.emc.com/rsa.
www.emc.com/rsa
“RSA has taken down some attacks for us in under five hours, and that would have been
almost impossible without their help,” said Sprongl. “I’m happy to recommend RSA’s
services. The company has lots of skills and experience, is very customer-focused and
has strong links to law-enforcement organizations, ISPs, and blocking organizations
worldwide.”
He concludes: “We were surprised to find that Trojans posed a bigger threat than phishing
attacks, but RSA gives us the confidence that we are comprehensively protected not just
from the kind of attacks we expect, but also from any new threats as they emerge.”
©2012 EMC Corporation. All rights reserved. EMC, the EMC logo, RSA, the RSA logo and FraudAction are the property
of EMC Corporation in the United States and/or other countries. All other trademarks referenced are the property of
their respective owners. PAYSAFE CP 1012